This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft File: iDHWIdGS-S2wk9kzCSweI2tNSXs.mft (raw, json) Hash identifier: gMpGpLgbgFLqevM6ncTaUgN6HMnS24Uk4h3WlpZg2D8= Subject key identifier: 0D:5A:61:99:4C:6B:BB:CE:96:05:D6:3D:95:FE:BC:7B:B8:EE:0C:0C Authority key identifier: 88:31:D6:21:D1:92:F9:2D:B0:93:D9:33:09:2C:1E:23:6B:4D:49:7B Certificate issuer: /CN=8831d621d192f92db093d933092c1e236b4d497b Certificate serial: 019B4ADE60FA738AA44B84AB4432DA5FCA8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft Manifest number: 1790 Signing time: Tue 23 Dec 2025 11:00:46 +0000 Manifest this update: Tue 23 Dec 2025 11:00:46 +0000 Manifest next update: Wed 24 Dec 2025 11:00:46 +0000 Files and hashes: 1: 1-6XFLoPOdCVTnXJMZNU0hBiKubk.roa (hash: OxkphaRHymUnb8SN18Gdla2SO6vLVqs5y/4vbMpFmm4=) 2: iDHWIdGS-S2wk9kzCSweI2tNSXs.crl (hash: qGfmAZKqH/WFptGfO3U7Go1nUCPO+Rm06Ma9eE5u5AQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:de:60:fa:73:8a:a4:4b:84:ab:44:32:da:5f:ca:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8831d621d192f92db093d933092c1e236b4d497b Validity Not Before: Dec 23 11:00:46 2025 GMT Not After : Dec 24 11:00:46 2025 GMT Subject: CN=0d5a61994c6bbbce9605d63d95febc7bb8ee0c0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:81:c3:b7:64:3e:a2:7c:c6:73:e8:06:9b:15: 72:e4:dc:ca:e4:f7:bf:d2:04:40:78:91:02:62:e0: 3d:53:a5:8e:b8:eb:24:4b:87:fc:00:3f:43:71:1e: f5:59:7e:a4:8c:10:21:2e:ab:5c:a8:40:c4:55:48: 00:e7:89:48:92:df:a3:ee:53:18:d9:56:50:3d:dd: 00:34:56:08:07:ee:71:02:71:52:44:eb:c4:89:89: c3:d6:4d:b3:73:0f:9b:6d:74:83:9b:e4:75:c7:2a: 8d:4f:23:9f:b2:e9:c8:e4:c3:83:e4:53:69:ec:5c: 9d:02:47:a7:0c:6c:ea:3e:29:f3:9c:85:8a:3d:f5: 14:6e:6c:5a:78:4d:35:e3:a4:14:93:aa:30:2d:e3: 4d:94:b4:91:91:21:93:82:cf:34:63:8c:ae:91:fc: d4:3f:78:f0:19:70:43:99:49:46:07:33:d6:bf:83: 27:f1:ca:8c:07:61:ac:34:6c:74:63:5f:30:40:76: b2:83:4e:45:f6:a5:63:23:4c:17:b2:3c:69:4d:bb: e5:79:16:6d:1f:65:52:12:b8:4e:12:82:c7:ff:d8: 57:a2:2e:df:ff:5d:54:f3:3e:bf:b2:f6:6b:af:52: cf:37:42:35:37:65:0b:b6:8a:91:61:38:36:2c:28: 42:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5A:61:99:4C:6B:BB:CE:96:05:D6:3D:95:FE:BC:7B:B8:EE:0C:0C X509v3 Authority Key Identifier: keyid:88:31:D6:21:D1:92:F9:2D:B0:93:D9:33:09:2C:1E:23:6B:4D:49:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:5c:e3:6c:89:3d:f8:ab:49:97:52:34:9d:a7:1c:45:86:67: b0:95:69:39:e9:d0:a7:29:0e:b2:8f:59:d7:4b:30:dd:ca:1f: 2f:5f:9c:b2:da:3e:78:e3:dc:f2:c6:51:3c:98:75:4e:35:fd: b3:75:e9:95:8d:1e:32:2f:c0:bc:3b:13:78:43:8b:80:63:13: 05:54:d9:b3:69:c5:5c:0f:61:fb:e2:bc:f3:7c:3f:01:10:a6: ac:d2:85:27:20:4d:71:02:e6:ac:64:99:fc:f5:60:94:4e:48: f3:b5:ab:0f:11:d4:d9:1d:9b:0f:1b:66:60:c6:66:7b:f0:50: dc:0e:e0:d7:fb:ac:2c:5b:66:03:ce:62:78:29:f0:3e:a2:73: 33:26:1d:c0:21:bd:d9:53:44:4c:2f:6a:b2:11:ec:ee:f4:de: 86:0e:10:a3:fc:5f:eb:08:27:5c:29:7c:59:f7:5b:11:77:d5: 3e:7b:6c:17:6c:aa:7f:c0:ef:e3:52:cc:9b:e9:b1:d0:11:ce: 81:23:c3:58:c8:c5:4f:5c:4f:4f:86:0d:e0:fe:4f:f6:ab:4d: 6d:2d:d1:95:f4:a9:36:3e:bf:92:51:eb:28:f3:92:26:6f:72: cf:f9:60:07:bc:37:c9:b5:cd:5f:48:05:eb:93:6c:6a:16:1b: 35:45:12:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtK3mD6c4qkS4SrRDLaX8qLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MzFkNjIxZDE5MmY5MmRiMDkzZDkzMzA5MmMxZTIzNmI0 ZDQ5N2IwHhcNMjUxMjIzMTEwMDQ2WhcNMjUxMjI0MTEwMDQ2WjAzMTEwLwYDVQQD EygwZDVhNjE5OTRjNmJiYmNlOTYwNWQ2M2Q5NWZlYmM3YmI4ZWUwYzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYHDt2Q+onzGc+gGmxVy5NzK5Pe/ 0gRAeJECYuA9U6WOuOskS4f8AD9DcR71WX6kjBAhLqtcqEDEVUgA54lIkt+j7lMY 2VZQPd0ANFYIB+5xAnFSROvEiYnD1k2zcw+bbXSDm+R1xyqNTyOfsunI5MOD5FNp 7FydAkenDGzqPinznIWKPfUUbmxaeE0146QUk6owLeNNlLSRkSGTgs80Y4yukfzU P3jwGXBDmUlGBzPWv4Mn8cqMB2GsNGx0Y18wQHayg05F9qVjI0wXsjxpTbvleRZt H2VSErhOEoLH/9hXoi7f/11U8z6/svZrr1LPN0I1N2ULtoqRYTg2LChCnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA1aYZlMa7vOlgXWPZX+vHu47gwMMB8GA1UdIwQY MBaAFIgx1iHRkvktsJPZMwksHiNrTUl7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaURIV0lkR1MtUzJ3azlrekNTd2VJMnROU1hzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS80NDA3ODEtZjYxNC00NTBkLTlkOWYt MmI4NzYxZDhhMTM3LzEvaURIV0lkR1MtUzJ3azlrekNTd2VJMnROU1hzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS80NDA3ODEtZjYxNC00NTBkLTlkOWYtMmI4NzYxZDhhMTM3 LzEvaURIV0lkR1MtUzJ3azlrekNTd2VJMnROU1hzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArlzjbIk9 +KtJl1I0naccRYZnsJVpOenQpykOso9Z10sw3cofL1+csto+eOPc8sZRPJh1TjX9 s3XplY0eMi/AvDsTeEOLgGMTBVTZs2nFXA9h++K883w/ARCmrNKFJyBNcQLmrGSZ /PVglE5I87WrDxHU2R2bDxtmYMZme/BQ3A7g1/usLFtmA85ieCnwPqJzMyYdwCG9 2VNETC9qshHs7vTehg4Qo/xf6wgnXCl8WfdbEXfVPntsF2yqf8Dv41LMm+mx0BHO gSPDWMjFT1xPT4YN4P5P9qtNbS3RlfSpNj6/klHrKPOSJm9yz/lgB7w3ybXNX0gF 65NsahYbNUUSDg== -----END CERTIFICATE-----Generated at Tue Dec 23 14:40:15 2025 by rpki-client